Listing Description
NOTE: Please do not send resume to email. Please use this link to apply. https://recruiting.ultipro.com/AME1077ASLHA/JobBoard/36aef174-e71b-4d95-9222-007124a820cb/OpportunityDetail?opportunityId=4f124699-ed22-483b-b0fd-056c0b417360
The purpose of this position is to manage and perform core information security functions. This includes recommending and implementing security systems, policies, and procedures to ensure compliance with standards, including PCI, HIPAA, and GDPR. Responsibilities also include monitoring and responding to security events, and providing office-wide information security awareness training.1. Monitor the security of all network systems. Recommend and implement additional security solutions or enhancements to ensure the confidentiality, integrity, and availability of ASHA data.
2. Perform risk assessments with business units, and develop incident response plans.
3. Lead incident response activities for all information security events, including data breaches and cyber attacks.
4. Supervise the design and execution of vulnerability assessments, penetration tests, and security audits.
5. Recommend and implement systems, policies, and procedures required for maintaining PCI, GDPR, and HIPAA compliance.
6. Create and maintain the Information Systems disaster recovery plan.
7. Maintain association Information Security Policy.
8. Develop and conduct security awareness training for all staff. Provide in-depth security training for network team staff.
9. Provide quarterly reports to upper management on the state of ASHA’s information security.
Qualifications
Knowledge Typically Acquired Through
• Obtaining a bachelor's degree in Computer Science or Information Systems Management
• Minimum of three years related experience
• Security certifications, such as CISSP, CISM, or GSEC
Scope and Depth of Technical Skills/Knowledge
• Detailed knowledge of and experience with:
o Implementing secured solutions for Microsoft Windows server and IIS environments.
o Implementing secured solutions for managing desktops.
o Implementing secured solutions for Cisco networking environments.
o Managing Internet security technologies and protocols, including firewalls, intrusion prevention systems, and virus detection systems
o Writing technical policies
Listing Details
- Salary: $90000 - $110000
- Citizenship: No Requirements
- Incentives: Not Provided
- Education: Bachelors Degree
- Travel: No Travel
- Telework: No Telecommute